SecWiki周刊(第390期)
2021/08/16-2021/08/22
安全资讯
安全技术
关于路由器的CGI漏洞分析及挖掘
https://mp.weixin.qq.com/s/1Fqb0j_gsm-eHF1uOwVgBw
https://mp.weixin.qq.com/s/1Fqb0j_gsm-eHF1uOwVgBw
firmeye - IoT固件漏洞挖掘工具
https://github.com/firmianay/firmeye
https://github.com/firmianay/firmeye
2020~2021 网络安全态势观察报告
https://www.venustech.com.cn/u/cms/www/202108/181454025drp.pdf
https://www.venustech.com.cn/u/cms/www/202108/181454025drp.pdf
Cisco Cook常用方法与技巧
https://mp.weixin.qq.com/s/0gfjSa0Q21qFovIhpKfeLw
https://mp.weixin.qq.com/s/0gfjSa0Q21qFovIhpKfeLw
TideFinger: 开源指纹工具
https://github.com/TideSec/TideFinger
https://github.com/TideSec/TideFinger
JSONP和CORS跨域漏洞学习笔记
https://mp.weixin.qq.com/s/FGGdgpBLcUciSXqkqkE40g
https://mp.weixin.qq.com/s/FGGdgpBLcUciSXqkqkE40g
使用文本模糊解释结构模型(TFISM)分析云服务隐私政策中的GDPR合规性
https://mp.weixin.qq.com/s/8W6MCfDvKjBB7Z5LNdffbg
https://mp.weixin.qq.com/s/8W6MCfDvKjBB7Z5LNdffbg
reviewdog: Automated code review tool integrated with any code analysis tools
https://github.com/reviewdog/reviewdog
https://github.com/reviewdog/reviewdog
HT2211 命令行版 HTTP 工具集 httpx new
https://tools.xazlsec.com/index.php/HT2210/261.html
https://tools.xazlsec.com/index.php/HT2210/261.html
NetGear 夜鹰 RAX40V2 设备与固件分析
https://www.anquanke.com/post/id/248900
https://www.anquanke.com/post/id/248900
[HTB] Tabby Writeup
https://mp.weixin.qq.com/s/L4Vuz7R84WbZz5GAtkJabQ
https://mp.weixin.qq.com/s/L4Vuz7R84WbZz5GAtkJabQ
VMware_vCenter 近期漏洞分析
https://mp.weixin.qq.com/s/W_vJA8tr_qFS1ff-lVy9Kw
https://mp.weixin.qq.com/s/W_vJA8tr_qFS1ff-lVy9Kw
SSH软链接后门利用和原理
https://mp.weixin.qq.com/s/CFPUbsblrV1MyDIGLaFKDg
https://mp.weixin.qq.com/s/CFPUbsblrV1MyDIGLaFKDg
那些计算机应用领域的脑洞是怎么产生的
https://mp.weixin.qq.com/s/295bsChkW6EC5xemDUUExA
https://mp.weixin.qq.com/s/295bsChkW6EC5xemDUUExA
APT29—觊觎全球情报的国家级黑客组织(下)
https://mp.weixin.qq.com/s/GBGJ1WOVsQCpVTY9audJPA
https://mp.weixin.qq.com/s/GBGJ1WOVsQCpVTY9audJPA
ICDF2C 2021 论文录用列表
https://mp.weixin.qq.com/s/jP8-0oHVwh75MtK22qmdlw
https://mp.weixin.qq.com/s/jP8-0oHVwh75MtK22qmdlw
模糊测试中的覆盖率导向详解——从代码覆盖率到状态覆盖率
https://mp.weixin.qq.com/s/7Sv0PW4ChVY_UTtOcJlBrw
https://mp.weixin.qq.com/s/7Sv0PW4ChVY_UTtOcJlBrw
安全创业者Go to Market策略
https://mp.weixin.qq.com/s/h3rzwBP1mCHDQubUBiTicw
https://mp.weixin.qq.com/s/h3rzwBP1mCHDQubUBiTicw
数据脱敏的风险量化评估方案
https://mp.weixin.qq.com/s/ItTpyty3LMSxwy8YL86CLg
https://mp.weixin.qq.com/s/ItTpyty3LMSxwy8YL86CLg
文本歧义在隐私政策知识图谱构建中的影响
https://mp.weixin.qq.com/s/VjlIw0QtAuBZXEORotDrwA
https://mp.weixin.qq.com/s/VjlIw0QtAuBZXEORotDrwA
自动化数据分析下的威胁发现
https://mp.weixin.qq.com/s/vHXQcfOcnuehzhrnPn9nSQ
https://mp.weixin.qq.com/s/vHXQcfOcnuehzhrnPn9nSQ
SecWiki周刊(第389期)
https://www.sec-wiki.com/weekly/389
https://www.sec-wiki.com/weekly/389
攻击基础设施是攻击者自有还是攻陷他人利用?
https://mp.weixin.qq.com/s/5otjKjP-teFmEerrswrpDA
https://mp.weixin.qq.com/s/5otjKjP-teFmEerrswrpDA
[HTB] Delivery Writeup
https://mp.weixin.qq.com/s/YixEsAWtS5YvwlKGgObWzw
https://mp.weixin.qq.com/s/YixEsAWtS5YvwlKGgObWzw
-----微信ID:SecWiki-----
SecWiki,13年来一直专注安全技术资讯分析!
SecWiki:https://www.sec-wiki.com本期原文地址: SecWiki周刊(第390期)
